CVE-2015-7559 - DoS in client via shutdown command
Severity: Low
Vendor:
The Apache Software Foundation
Versions Affected:
Apache ActiveMQ 5.0.0 - 5.14.4
Description:
It was found that Apache ActiveMQ client exposed a remote shutdown command in the ActiveMQConnection class. An attacker could use this flaw to achieve denial of service on a client.
Mitigation:
Upgrade to Apache ActiveMQ 5.14.5.
Credit:
Thanks to Chess Hazlett for reporting this vulnerability